Incoming DDoS attack

[Dj.IcE]

How to prevent this guys?
I'm with knownsrv [vps] ddosed by a scumbag last night and threatening to ddos again tomorrow and day after.

How to stop? this

 

[shakhawat]

Use www.cloudflare.com

 

[Dj.IcE]

^^ so is it preventing it or minimizing?

 

[Dj.IcE]

Anyone?..........

 

[Th3KiNG]

^^ so is it preventing it or minimizing?

i think minimizing it

 

[Dj.IcE]

Damn any way to prevent these attacks?

 

[zvze]

cloudflare can help. but try iptables+fwsnort

 

[viruz99]

Hmmm i thought Knownsrv already had a system in place to deal with DDOS attacks....

 

[ItsmYarD]

Shut your website down and find a job.

 

[Sonic]

install DoS deflate

 

[Dj.IcE]

^^ sure it's working mate?

 

[WaReZ]

cloudflare + DoS deflate + nginx + csf firewall

with that combination I think you can stop 90% attack

 

[Sonic]

yes it will help a lot. this script ban IPs by request.

to avoid normal IPs being banned set it to 170 requests per user (or depending on your site, if it is a wordpress blog set it on 130 or if its a forum 170 - 200 requests:
/usr/local/ddos/ddos.conf

 

[Froomple]

cloudflare + DoS deflate

and try to find the IP he is using, ban that

 

[deliteblogger]

a strong ddos doesn't come from a single ip..

 

[GoPantheoN]

a strong ddos doesn't come from a single ip..

Distributed Dos = Multiple ips.
Dos = Single ip.

:facepalm:

OnTopic: As they told, install csf.

 

[XSLTel]

cloudflare + DoS deflate + nginx + csf firewall

with that combination I think you can stop 90% attack

blah blah blah
-----

anyway you can install CSF Firewall and set CT_LIMIT to 150 Connections Per IP.

avoid using DDoS Deflate its poor and old coded script (its not accurate can result in banning your real visitors) instead go with CSF. however use it only when your VPS provider disabled iptables modules which won't let you install CSF firewall and I doubt KnownSRV disabled those mods.

Highest Regards
Mohammed H

 

[eLight]

Check out the link in my sig, if it's a regular/common form of DDoS it is usually pretty easy to filter out.

 

[Dj.IcE]

^^ thank you

 

[Florios]

disable pinging...